Post Wed Jun 18, 2008 9:49 am

Web Application Security Position

We currently have an opening for a Web Application Security Consultant in the Raleigh NC area or remote.

We are seeking a qualified web application security consultant to perform a web application security assessments on one our client’s web-based applications. Qualified candidates must possess the following:
•        Knowledge of HTML, JavaScript, DOM, AJAX, CSS, PHP, ASP and .NET
•        Must have working knowledge of XSS, SQL Injection, RFI ,LFI, CSRF, Response Splitting, and other attack vectors
•        Must have experience with performing Penetration Tests, including network-layer targets
•        Knowledge of the OWASP testing guidelines
•        Knowledge of the OSSTMM framework
•        Understanding of “Google Hacking”
•        Experience with Nmap, Unicornscan, Nessus, Wikto, WebScarab, and various tools utilized in performing security analysis
•        Candidates with a CISSP or CEH preferred

Please email: